Add new DTLS-SRTP protection profiles from RFC 7714

author Dmitry Sobinov <sobinoff@gmail.com>

Sat, 2 Jan 2016 11:32:36 +0000 (22:32 +1100)

committer Matt Caswell <matt@openssl.org>

Thu, 4 Feb 2016 22:52:21 +0000 (22:52 +0000)
author Dmitry Sobinov <sobinoff@gmail.com>
Sat, 2 Jan 2016 11:32:36 +0000 (22:32 +1100)
committer Matt Caswell <matt@openssl.org>
Thu, 4 Feb 2016 22:52:21 +0000 (22:52 +0000)
diff --git a/include/openssl/srtp.h b/include/openssl/srtp.h

index 1f5aed21ff60c9893df068e57de97ca2d46f6f36..da9369ec2ed45229ff871999a3c4468b5a55a32f 100644 (file)
--- a/include/openssl/srtp.h
+++ b/include/openssl/srtp.h
@@ -129,6 +129,10 @@ extern "C" {
  # define SRTP_NULL_SHA1_80      0x0005
  # define SRTP_NULL_SHA1_32      0x0006
  
+/* AEAD SRTP protection profiles from RFC 7714 */
+# define SRTP_AEAD_AES_128_GCM  0x0007
+# define SRTP_AEAD_AES_256_GCM  0x0008
+
  # ifndef OPENSSL_NO_SRTP
  
  __owur int SSL_CTX_set_tlsext_use_srtp(SSL_CTX *ctx, const char *profiles);
diff --git a/ssl/d1_srtp.c b/ssl/d1_srtp.c

index 587a592e82afa93d08fcea04b909849d89c46168..f969fb10b11e493afba2b1698cea7147c502d206 100644 (file)
--- a/ssl/d1_srtp.c
+++ b/ssl/d1_srtp.c
@@ -128,6 +128,14 @@ static SRTP_PROTECTION_PROFILE srtp_known_profiles[] = {
       "SRTP_AES128_CM_SHA1_32",
       SRTP_AES128_CM_SHA1_32,
       },
+    {
+     "SRTP_AEAD_AES_128_GCM",
+     SRTP_AEAD_AES_128_GCM
+     },
+    {
+     "SRTP_AEAD_AES_256_GCM",
+     SRTP_AEAD_AES_256_GCM
+     },
      {0}
  };
author	Dmitry Sobinov <sobinoff@gmail.com>
	Sat, 2 Jan 2016 11:32:36 +0000 (22:32 +1100)
committer	Matt Caswell <matt@openssl.org>
	Thu, 4 Feb 2016 22:52:21 +0000 (22:52 +0000)
include/openssl/srtp.h		patch \| blob \| history
ssl/d1_srtp.c		patch \| blob \| history